Senior Security Engineer
Work Location San Jose, CA
Duration 6months
Mandatory Technical Skills
Total Experience Required 6+ yrs
Strong general security background (CISSP, GIAC, etc)
Experience securing large-scale web applications
Good understanding of L2/L3 layer
One or more scripting or programming languages (Perl, C, Shell, Python, Ruby, etc)
Exposure to open source infrastructure management, and automation, and security tools.
Good understanding with standard security/troubleshooting tools (Nessus, Nmap, tcpdump/wireshark, snort, burp, etc)
Knowledge with Oracle, mysql, and mssql
Good understanding of ISO 27001 and PCI-DSS v2.0
Experience with Splunk, OSSEC, McAfee ePolicy Auditor, RedSeal, and MVMD
Proactive research to identify and understand new threats, vulnerabilities, and exploits
Monitoring IDS, Firewall, and log correlation tools for potential threats
Definition and enforcement of system and network security policies
Desirable Technical Skill/ Responsibilities
Proactively look for ways to improve network and infrastructure security Practices
Take a leadership role in driving internal security and privacy initiatives to secure a SaAS environment
Run vulnerability assessments, using Qualys, and security reviews on a regular basis
Own configuration and hardening standards for systems and applications
Management/review of mix & windows host security configuration and architecture
Vulnerability assessments & penetration testing of all aspects of our infrastructure
Assist with evaluation of proposals and the implementation of best security practices
Assist in the definition and implementation network security policies and procedures
Provide risk analysis for vulnerabilities, incidents, and change requests
No comments:
Post a Comment